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LISTING OF THE CLAIMS 

This listing of claims will replace all prior versions, and listings, of claims in the 
application: 

1. (Original) A method for revocation of a signature certificate in a Public Key Infrastructure 
(PKI) comprising: 

creating an authenticated secure channel with a registration web server; 
requesting the registration web server revoke a user signature certificate, the requesting 
occurring over the authenticated secure channel; 
revoking the user signature certificate; 

notifying a directory by the registration web server of revocation of the user signature 
certificate; and 

setting a user entry in the directory to a state without a signature certificate. 

2. (Original) The method according to claim 1, further comprising generating a directory 
password for the user during creation of the user signature certificate. 

3. (Original) The method according to claim 2, wherein the creating and requesting are initiated 
by the user. 

4. (Original) The method according to claim 3, wherein the security of the user signature 
certificate has been potentially compromised. 
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5. (Original) The method according to claim 3, further comprising sending the user one of a 
password and a personal identification number (PIN) by the registration web server after the 
setting of the user entry. 

6. (Original) The method according to claim 5, further comprising requesting a new signature 
certificate by the user using the directory password and one of the password and the PIN. 

7. (Original) The method according to claim 3, further comprising using the user signature 
certificate to authenticate the user before the creating. 

8. (Original) The method according to claim 1, further comprising notifying a personal 
registration authority by a user that the user has lost the user signature certificate, the notifying 
occurring before the creating. 

9. (Original) The method according to claim 8, wherein the creating and requesting are initiated 
by the personal registration authority. 

10. (Original) The method according to claim 9, further comprising requesting a personal 
registration authority's signature certificate to authenticate the personal registration authority 
before the creating. 

1 1 . (Original) The method according to claim 10, wherein the personal registration authority is a 
supervisor of the user. 
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12. (Original) The method according to claim 10, further comprising querying the directory after 
the requesting the registration web server revoke the user signature certificate to determine if the 
personal registration authority is permitted to revoke the user signature certificate. 

13. (Original) The method according to claim 12, further comprising revoking the user signature 
certificate by the registration web server only if the personal registration authority is permitted to 
revoke the user signature certificate. 

14. (Original) The method according to claim 13, further comprising generating a directory 
password for the user during creation of the user signature certificate. 

15. (Original) The method according to claim 14, further comprising sending the user one of a 
password and a personal identification number (PIN) by the registration web server after the 
setting of the user entry. 

16. (Original) The method according to claim 15, further comprising requesting a new signature 
certificate by the user using the directory password and one of the password and the PIN. 

17. (Original) The method according to claim 1, wherein the revoking is performed by the 
registration web server. 
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18. (Currently Amended) An articl e A server comprising a storage medium having instructions 
stored therein, the instructions when executed causing a processing device to perform: 

creating an authenticated secure channel between the server and with an entity; 
receiving a request from the entity to revoke a user signature certificate; 
revoking the user signature certificate; and 

notifying a directory of revocation of the user signature certificate. 

19. (Currently Amended) The articl e server according to claim 18, further comprising verifying 
the entity is permitted to revoke the user signature certificate. 

20. (Currently Amended) The articl e server according to claim 19, further comprising revoking 
the user signature certificate only if the entity is permitted to revoke the user signature certificate. 

21 . (Currently Amended) The articl e server according to claim 1 8, wherein the entity is the user. 

22. (Currently Amended) The articl e server according to claim 18, wherein the entity is a 
personal revocation authority. 

23. (Original) A system for revocation of a signature certificate in a Public Key Lifrastructure 
(PKI) comprising: 

at least one server operably cormected to a network; 

a directory operably connected to the network, the directory containing information on at 
least one user; 
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at least one client platform operably connected to the network, the at least one user 
having access to the at least one server from the at least one client platform; and 

a registration web server operably connected to the network, the registration web server 
receiving a request for revocation of a user signature certificate from an entity, the registration 
web server revoking the user signature certificate only if the entity is permitted to revoke the user 
signature certificate, the registration web server notifying the directory of revocation of the user 
signature certificate if revoked. 

24. (Original) The system according to claim 23, wherein the information on at least one user 
includes a user entry related to the user signature certificate, the directory setting the user entry 
in the directory to a state without a signature certificate if the user signature certificate is 
revoked. 

25. (Original) The system according to claim 23, further comprising an authenticated secure 
channel between the entity and the registration web server, the requesting occurring over the 
authenticated secure channel. 

26. (Currently Amended) The system according to claim 23, wherein the entity comprises eae at 
least one user. 

27. (Original) The system according to claim 23, wherein the entity comprises a personal 
registration authority. 
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28. (Original) The system according to claim 27, wherein the personal registration authority is a 
supervisor of the at least one user. 
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